PCI Compliance

PCI DSS Compliance

At Merchant Hub we hold payment security as our first priority. That's why we created a simple security programme that provides everything you need to keep your business protected - from achieving PCI DSS compliance to securing your customers' data throughout transactions.

The Payment Card Industry Data Security Standards (PCI DSS) is a set of requirements for enhancing payment account data security. These standards were developed by the PCI Security Standards Council, which was founded by Visa®, MasterCard®, JCB®, Discover® and American Express® to facilitate industry-wide adoption of consistent data security measures on a global basis.

It applies to all businesses that take credit and debit cards, regardless of size or transaction volume. Any business involved in the storage, processing and/or transmission of payment card numbers must comply.

The fallout of non-compliance has a domino effect on your business, as the financial implications of a breach can destroy customers of any size. You can mitigate risk by maintaining compliance and providing verification and certification as required by the industry. By following the standardised PCI DSS procedures, you can:

Merchant Hub has partnered with leading PCI DSS compliance service providers (Qualified Security Assessors - QSA) to establish procedures to protect your business and your customers from theft, fraud and other security risks from the compromise of card data. Helpful agents will work with you to identify the steps you need to take to validate compliance. Please register via our PCI protal using the tool on the right or by clicking on the link that was sent to you in the Pre-registration email. Once you have successfully registered and completed your PCI DSS questionnaire, including vulnerability scan if necessary, you will get a compliance certificate.

Merchant Hub has partnered with leading PCI DSS compliance service providers (Qualified Security Assessors - QSA) to establish procedures to protect your business and your customers from theft, fraud and other security risks from the compromise of card data. Helpful agents will work with you to identify the steps you need to take to validate compliance.

Please register via our PCI portal using the tool on the right or by clicking on the link that was sent to you in the Pre-registration email. Once you have successfully registered and completed your PCI DSS questionnaire, including vulnerability scan if necessary, you will get a compliance certificate.

PCI Security

PCI Security Standards are technical and operational requirements set by the PCI Security Standards Council (PCI SSC) to protect cardholder data. The Council is responsible for managing the security standards, while compliance with the PCI Security Standards is enforced by the payment card brands. The standards apply to all organizations that store, process or transmit cardholder data – with guidance for software developers and manufactures of applications and devices used in those transactions.

PCI DSS

The PCI DSS follows common-sense steps that mirror security best practices. There are three steps for adhering to the PCI DSS – which is not a single event, but a continuous, ongoing process. First, Assess – identify cardholder data, take and inventory of your IT assets and business processes for payment card processing, and analyze them for vulnerabilities that could expose cardholder data. Second, Remediate – fix vulnerabilities and do not store cardholder data unless you need it. Third, Report – compile and submit required remediation validation records (if applicable), and submit compliance reports to the acquiring band and card brands you do business with.